Threat Search: 

ThreatExpert's Statistics for Trojan.Srizbi!sd6 [PC Tools]:

Trojan.Srizbi!sd6 [PC Tools] is also known as:
Threat AliasNumber of Incidents
Trojan.Srizbi [Symantec]23
Mal/RootKit-C [Sophos]15
Spammer:WinNT/Srizbi.A [Microsoft]15
Cryp_Xed-3 [Trend Micro]13
Generic.dx [McAfee]11
Rootkit.Win32.Agent.ctm [Kaspersky Lab]9
Mal/EncPk-CK [Sophos]5
TrojanDropper:Win32/Srizbi.gen!D [Microsoft]5
TROJ_SRIZBI.AG [Trend Micro]4
Rootkit.Win32.Qandr [Ikarus]3
Infostealer.Bzup [Symantec]2
Rootkit.Win32.Qandr.ji [Kaspersky Lab]2
Srizbi [McAfee]2
TROJ_SRIZBI.AP [Trend Micro]2
TROJ_SRIZBI.UJ [Trend Micro]2
Trojan.Win32.Srizbi.ay [Kaspersky Lab]2
Dropper/Srizbi.91648 [AhnLab]1
Generic.Srizbi [Ikarus]1
Mal/Generic-A [Sophos]1
Rootkit.Win32.Qandr.eh [Kaspersky Lab]1
Spammer:WinNT/Srizbi.gen!B [Microsoft]1
Troj/Dropper-PD [Sophos]1
TROJ_DROPPER.BGV [Trend Micro]1
TROJ_PAKES.YK [Trend Micro]1
TROJ_SRIZBI.AB [Trend Micro]1
TROJ_SRIZBI.V [Trend Micro]1
Trojan.Srizbi.CZ [Ikarus]1
Trojan.Win32.Srizbi.y [Kaspersky Lab]1
Trojan-Dropper.Win32.Agent.eus [Kaspersky Lab]1
TrojanDropper:Win32/Srizbi.C [Microsoft]1
Virus.Win32.Agent.ABJY [Ikarus]1

Trojan.Srizbi!sd6 [PC Tools] is known to be created as:
%System%\drivers\cnp58.sys
%System%\drivers\csi56.sys
%System%\drivers\mio42.sys
%System%\drivers\mvdy68.sys
%System%\drivers\nas37.sys
%System%\drivers\nuf44.sys
%System%\drivers\plj37.sys
%System%\drivers\ptssunps.sys
%System%\drivers\tpx51.sys
%System%\drivers\weh21.sys
%System%\drivers\yoq38.sys
%Temp%\ilifpohe.exe
%Temp%\my_fotos.exe
%Windir%\cpapwapd.exe
%Windir%\rraalakr.exe
Notes:
  • %System% is a variable that refers to the System folder. By default, this is C:\Windows\System (Windows 95/98/Me), C:\Winnt\System32 (Windows NT/2000), or C:\Windows\System32 (Windows XP).
  • %Temp% is a variable that refers to the temporary folder in the short path form. By default, this is C:\Documents and Settings\[UserName]\Local Settings\Temp\ (Windows NT/2000/XP).
  • %Windir% is a variable that refers to the Windows installation folder. By default, this is C:\Windows or C:\Winnt.